Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/0M2Dn3xeDCEvdjhaMjmyMO85Dbw.roa
File: 0M2Dn3xeDCEvdjhaMjmyMO85Dbw.roa (raw, json)
Hash identifier: IN6cO4kU52aLha3W7jheQ6ZSCifqXoisCyW2LjoHJoQ=
Subject key identifier: D0:CD:83:9F:7C:5E:0C:21:2F:76:38:5A:32:39:B2:30:EF:39:0D:BC
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0B4461BF
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/0M2Dn3xeDCEvdjhaMjmyMO85Dbw.roa
Signing time: Sat 01 Jan 2022 13:04:56 +0000
ROA not before: Sat 01 Jan 2022 13:04:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35348
IP address blocks: 89.44.228.0/24 maxlen: 24
89.44.229.0/24 maxlen: 24
89.36.20.0/24 maxlen: 24
89.36.198.0/24 maxlen: 24
85.204.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189030847 (0xb4461bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Jan 1 13:04:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0cd839f7c5e0c212f76385a3239b230ef390dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:96:2e:d5:39:b6:10:eb:fc:d3:ca:3c:0d:25:
7c:2c:3e:fa:f0:55:4f:0e:92:f5:3e:51:7b:67:43:
fd:bd:df:0f:4c:26:1c:ae:86:7f:0b:91:d0:d2:54:
f1:ee:6a:65:2d:10:93:38:22:31:c8:34:a2:dc:66:
61:fa:28:ff:fc:42:f1:01:37:28:4f:a3:a1:86:b2:
6e:9a:4e:cc:03:54:53:31:10:ce:5b:49:62:1e:f6:
3a:4a:98:05:85:a2:51:d2:84:ad:08:3d:a5:97:6f:
9f:ce:c6:6b:c7:df:f1:a0:c4:f9:cc:73:b3:5e:9c:
3b:61:d8:9f:9c:18:4c:c8:e7:46:ab:5a:23:f5:d4:
c7:a8:51:b4:ec:3e:36:91:b2:70:86:dd:5c:0f:1d:
c3:9a:92:03:9c:f8:27:86:95:c0:03:2a:ff:e3:7f:
3b:4e:18:54:ec:ae:9f:79:69:79:ef:f8:6e:80:8b:
fc:7d:f6:f7:c3:b7:fb:f3:d5:72:04:a5:39:5d:64:
ad:fd:a2:be:42:f7:bc:51:a4:36:9d:27:a7:e4:d3:
14:a4:11:53:22:ec:11:2f:be:dd:5a:f9:ba:39:db:
3b:f5:b7:84:65:c9:06:e0:f6:ca:ec:be:e7:ae:52:
7b:80:71:39:9a:08:e9:64:48:ea:1e:bf:3a:dd:a8:
dd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:CD:83:9F:7C:5E:0C:21:2F:76:38:5A:32:39:B2:30:EF:39:0D:BC
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/0M2Dn3xeDCEvdjhaMjmyMO85Dbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.98.0/24
89.36.20.0/24
89.36.198.0/24
89.44.228.0/23
Signature Algorithm: sha256WithRSAEncryption
00:49:6c:e6:60:db:17:0b:33:5b:68:36:6d:89:e4:4b:b8:1f:
0b:eb:1b:0c:47:2d:09:ba:91:84:4e:4e:5a:0a:8e:6b:1c:21:
37:31:53:a0:0f:fd:b3:7b:82:09:7f:b0:33:78:60:06:16:32:
0e:ec:ce:7f:ed:4a:b0:c5:d7:35:98:fc:92:bf:70:18:af:2e:
5b:5b:05:64:40:be:77:9e:8b:7c:cd:b9:2d:a4:2d:a9:c5:d0:
f4:31:1b:b2:a6:1b:f0:56:47:c7:0a:dc:1d:f6:d3:67:28:a4:
74:8d:f7:bb:67:29:42:10:fa:af:36:a7:22:f2:02:03:a3:79:
fc:32:40:bb:75:d7:f0:97:0a:41:31:69:b8:14:0e:ea:b6:91:
92:a1:56:b1:45:09:c3:55:5f:4f:63:1e:48:84:cf:31:51:0e:
57:c0:4e:0e:92:18:bc:49:22:f7:40:e1:73:2e:d2:8b:eb:d2:
46:b6:75:07:79:30:d1:06:c4:b5:34:1c:c6:f6:e1:2e:74:af:
26:fd:ad:8e:38:7a:d5:08:94:f3:0d:50:8b:9e:3d:da:9f:fe:
7a:98:ff:af:1d:b9:ea:94:0b:b6:75:9a:ba:0d:e2:17:b4:de:
b9:6c:be:61:7c:0b:67:d9:b7:89:76:65:47:9c:66:b0:09:f7:
1a:5d:b7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:38 2024 by rpki-client on console-ams.rpki-client.org